PULSE
LIVE18signals / 24h
FEED
ransomthegentlemen reclama a Military Sealift Command · US · Transportation/Logisticsransomthegentlemen reclama a Advantage Home Health Care · US · Healthcareransomthegentlemen reclama a Sunway Scientific · TW · Manufacturingransomqilin reclama a Cafar · AR · Agriculture and Food Productionransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomthegentlemen reclama a Military Sealift Command · US · Transportation/Logisticsransomthegentlemen reclama a Advantage Home Health Care · US · Healthcareransomthegentlemen reclama a Sunway Scientific · TW · Manufacturingransomqilin reclama a Cafar · AR · Agriculture and Food Productionransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Services
← All CVEs
CVE WatchJul 16, 2026

CVE-2026-48340

Bridge is affected by an Untrusted Pointer Dereference vulnerability that could result in arbitrary code execution in the context of the cur

CVSS

7.8

High

EPSS

0.2%

p7

KEV

Exploit Today

2

0-100

Published: Jul 14, 2026 · Last modified: Jul 16, 2026 · CWE-822

EPSS · 30d
0.2%EPSS · 30 days0.2%
2026-07-152026-07-17
Technical description

Bridge is affected by an Untrusted Pointer Dereference vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Official references
Related CVEs
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-504247.5 HIG
53.6%
16Untrusted pointer dereference in Windows Domain Controller allows an unauthorized attacker to deny service over a network.3d
CVE-2026-585968.3 HIG
36.4%
11Untrusted pointer dereference in Microsoft Edge (Chromium-based) allows an unauthorized attacker to elevate privileges over a network.4d
CVE-2026-485805.5 MED
36.2%
11Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.2d
CVE-2026-456457.8 HIG
29.4%
9Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.9d
CVE-2026-551385.5 MED
26.7%
8Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.2d
CVE-2026-504797.8 HIG
23.9%
7Untrusted pointer dereference in Windows USB Hub Driver allows an authorized attacker to elevate privileges locally.16h